npm · registry.npmjs.org
@jolli.ai/cli
Install Lifecycle Remote Or Exec: postinstall="node -e \"require('fs').existsSync('dist/PostInstall.js') && require('child_process').spawnSync(process.execPath,['dist/PostInstall.js'],{stdio:'inherit'})\""
Why PkgRadar flagged 0.99.2
| Severity | Signal | Evidence |
|---|---|---|
| high | Install Lifecycle Remote Or Exec | postinstall="node -e \"require('fs').existsSync('dist/PostInstall.js') && require('child_process').spawnSync(process.execPath,['dist/PostInstall.js'],{stdio:'inherit'})\"" · package.json |
Scanned versions
| Version | Verdict | Score | Scanned (UTC) |
|---|---|---|---|
0.99.2 | Review | 10 | 2026-06-02 |
0.99.0 | Review | 10 | 2026-06-01 |
0.99.1 | Review | 10 | 2026-06-01 |
Block this in CI
pkgradar gate --ecosystem npm @jolli.ai/[email protected]